Patrick de Ruiter
dc269e5fc2
Some checks failed
Code Quality & Security Scan / TFLint (push) Failing after 1m11s
Code Quality & Security Scan / Tfsec Security Scan (push) Has been skipped
Code Quality & Security Scan / Checkov Security Scan (push) Has been skipped
Code Quality & Security Scan / Terraform Validate (push) Has been skipped
Code Quality & Security Scan / SonarQube Trigger (push) Has been skipped
- Removed gitlink entries for consul_template-legacy and consul_template-org - Converted from git submodules to regular directories - Fixes: 'fatal: No url found for submodule path' error when downloading module - Required for using module with git::https:// source in parent modules
36 lines
1.1 KiB
Django/Jinja
36 lines
1.1 KiB
Django/Jinja
vault {
|
|
address = "{{ vault_address }}"
|
|
auth {
|
|
method "approle" {
|
|
config = {
|
|
role_id = "{{ vault_approle_role_id }}"
|
|
secret_id = "{{ vault_approle_secret_id }}"
|
|
}
|
|
}
|
|
}
|
|
renew_token = true
|
|
}
|
|
|
|
log_level = "{{ consul_template.log_level | default('INFO') }}"
|
|
|
|
template {
|
|
source = "{{ consul_template.config_dir }}/certificate.ctmpl"
|
|
destination = "{{ certificate_paths.cert_dir }}/{{ certificate_paths.cert_file }}"
|
|
command = "{{ service_reload_commands[certificate_service | default('default')] }}"
|
|
perms = 0644
|
|
}
|
|
|
|
template {
|
|
source = "{{ consul_template.config_dir }}/private_key.ctmpl"
|
|
destination = "{{ certificate_paths.private_dir }}/{{ certificate_paths.private_key_file }}"
|
|
command = "chmod 600 {{ certificate_paths.private_dir }}/{{ certificate_paths.private_key_file }}"
|
|
perms = 0600
|
|
}
|
|
|
|
template {
|
|
source = "{{ consul_template.config_dir }}/chain_pem.ctmpl"
|
|
destination = "{{ certificate_paths.private_dir }}/{{ certificate_paths.chain_file }}"
|
|
command = "chmod 600 {{ certificate_paths.private_dir }}/{{ certificate_paths.chain_file }}"
|
|
perms = 0600
|
|
}
|